icedid | c82715c83b56ae300e9f2edde73a42e1a737178e17939738030d01f4f9399e51 | Triage

Sharing

General

Target

sample_c82715c83b56ae300e9f2edde73a42e1a737178e17939738030d01f4f9399e51
Size

553KB
Sample

220405-naw1yahcam
MD5

212629836cce8e997c4cce3c5bf4e0e4
SHA1

9ffeecde7cad6feffad74f11f8852e8c0efb09bb
SHA256

c82715c83b56ae300e9f2edde73a42e1a737178e17939738030d01f4f9399e51
SHA512

a76aee161d23ee1d8ebcd3c9f85375cc6f1d0db1fcff4ec4f8b0ae3c976f700f177f648ca7cdd19cc562e581a5f802b95d01147e4aba499074c3e387af116538

Score

10^/10

icedid 3960091620 banker loader suricata trojan

Malware Config

Extracted

Family

icedid

Campaign

3960091620

C2

magnesiumik.top

Targets

- Target
  
  sample_c82715c83b56ae300e9f2edde73a42e1a737178e17939738030d01f4f9399e51
- Size
  
  553KB
- MD5
  
  212629836cce8e997c4cce3c5bf4e0e4
- SHA1
  
  9ffeecde7cad6feffad74f11f8852e8c0efb09bb
- SHA256
  
  c82715c83b56ae300e9f2edde73a42e1a737178e17939738030d01f4f9399e51
- SHA512
  
  a76aee161d23ee1d8ebcd3c9f85375cc6f1d0db1fcff4ec4f8b0ae3c976f700f177f648ca7cdd19cc562e581a5f802b95d01147e4aba499074c3e387af116538
Score

10^/10

icedid 3960091620 banker loader suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3960091620bankerloadersuricatatrojan

behavioral2

icedid3960091620bankerloadersuricatatrojan